Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1398

Overview

Vulnerability Score 6.2 6.2
CVE Id CVE-1999-1398
Last Modified 05 Sep 2008 04:19:25
Published 07 May 1997 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-1999-1398

Summary

Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a symlink attack.

Vulnerable Systems

Operating System

  • Sgi Irix 5.0

  • Sgi Irix 5.0.1

  • Sgi Irix 5.1

  • Sgi Irix 5.1.1

  • Sgi Irix 5.2

  • Sgi Irix 5.3

  • Sgi Irix 6.0

  • Sgi Irix 6.0.1

  • Sgi Irix 6.1

  • Sgi Irix 6.2

  • Sgi Irix 6.3

  • Sgi Irix 6.4


References

BID - 472

MISC - http://www.insecure.org/sploits/irix.xfsdump.html

BUGTRAQ - 19970507 Irix: misc


Last Updated: 27 May 2016 10:35:24